Sandboxie help and configs

[MetalShaun]

I see where I am getting a bit confused here. I was thinking that when you ran a browser sandboxed the whole prgram was copied into the sandbox and ran from there, but I just checked and it seems only the user data, cookies and temp files etc are redirected to the Sandbox directory on the C drive.

[Tweak]

(05-16-2011 08:10 AM)BoXX28 Wrote:  Doesn't work right Tweak since my download manager also gets sandboxed.

Somehow you should be able to utilize the recovery related options but since I do not use a download manager I am not sure of any special settings or needs beyond adding the download directory so that recovery can be invoked.

[HeffeD]

(05-16-2011 10:07 AM)MetalShaun Wrote:  I see where I am getting a bit confused here. I was thinking that when you ran a browser sandboxed the whole prgram was copied into the sandbox and ran from there, but I just checked and it seems only the user data, cookies and temp files etc are redirected to the Sandbox directory on the C drive.

Yes, basically anything that you encounter during a browsing section.

You can however, install things inside the sandbox. This way the whole shebang exists in the sandbox. If you decide to go this route however, you'll want to dedicate a sandbox to this single application and obviously not set the sandbox to auto-delete the contents. I've never used this method for long term application usage so I don't know if there are any gotcha's you'd need to watch out for.

[bo.elam]

(05-16-2011 10:07 AM)MetalShaun Wrote:  I see where I am getting a bit confused here. I was thinking that when you ran a browser sandboxed the whole prgram was copied into the sandbox and ran from there, but I just checked and it seems only the user data, cookies and temp files etc are redirected to the Sandbox directory on the C drive.

When you run your browser sandboxed, all changes done while browsing
are isolated from the rest of the system, not affecting your real system.
This changes are gone when you delete the contents of the sandbox
and your system, browser remains as it was before you started browsing.
The ONLY changes are ....files that you have downloaded and recovered
to your hard drive.

If you run a browser installer and install the browser sandboxed, then
you ll see a copy of program files in the Sandboxie directory in C Drive.

Bo

---

(05-16-2011 08:10 AM)BoXX28 Wrote:  Doesn't work right Tweak since my download manager also gets sandboxed.

Have you check Configure>Software Compatibility in Sandboxie Control?
If the download manager that you are using is in there, add it to the list.
I have never used download managers but it should work fine since yours
is in Sandboxies download managers list.
You probably have but if you have not, try using the download manager
on a default sandbox, only enabling droprights, adding the download mgr
to the applications list and enabling compatibility if its available.

Bo

[Umbra Polaris]

ok there is my problem:

I create a specific sandbox for testing malwares, i put inside a folder called "Virus" , the sandbox is designed to force everything in it to be sandboxed, when i scan with my Avs the infected folder, everything goes normal, but when i want to clean it, they can't move or quaurantine the malwares.

someone has a suggestion?

[Overkill]

Here's how mine is currently...
From top to bottom the settings i've changed...
Forced Programs:Icedragon
Dropped Rights:Ticked
Resource Access>File Access>Direct Access:my sessions extension local storage
WebBrowsers:IE (first top 3 options are ticked)
Dragon & Iron:(first top 3 options are ticked)
That's it everything else is default and I only use the default sandbox, any suggestions are welcomed

[bo.elam]

(07-20-2012 04:49 AM)Umbra Corp. Wrote:  ok there is my problem:

when i scan with my Avs the infected folder, everything goes normal, but when i want to clean it, they can't move or quaurantine the malwares.

someone has a suggestion?

Hi Umbra, just noticed your question from about a month ago. What you are describing here sounds like a conflict between SBIE and the AVs that you used for the test.

You use so many of them at the same time so let me ask you, which AV did you use for the test?

Also, did you check if the AVs are in the compatibility list that SBIE provides? If they are there and you haven't added them, do it so SBIE works better with them.

You should be able to scan foldes and remove files in there with your AV when using Sandboxie.

Bo

[bo.elam]

(07-20-2012 05:44 AM)MRF71 Wrote:  That's it everything else is default and I only use the default sandbox, any suggestions are welcomed

Hey MRF, the default sandbox is very strong as it is, if you feel comfortable using it like that, then that's how you should use it. Just remember one thing though, contents remain in the sandbox until they get deleted. So, either set the sandbox to delete on closing or delete it manually every few days or so.

Bo

[Umbra Polaris]

(08-26-2012 03:42 PM)bo.elam Wrote:  You use so many of them at the same time so let me ask you, which AV did you use for the test?

At that time it was CIS if my memory is good anyway it is past i don't use SB anymore since OAP is not very compatible with it, and if i should get back to CIS, the v6 will have full virtualization like SB.

Anyway thanks to reply, it will be still useful.

[bo.elam]

(08-26-2012 04:06 PM)Umbra Corp. Wrote:  At that time it was CIS if my memory is good

There is a software compatibility setting in SBIE for CIS. If you had not checked that setting, it is likely that it is the reason that Comodo was not able to remove malware from the sandboxed folder. As far as I know, "at this time" there is no conflict between SBIE and Comodo.

Bo